Working with a Cisco router

[Tim Gavin]

Damn gmail started replying to an individual instead of the list and I
didn't realize it.  I think this is all the missing thread.

If it makes a difference to anything, I'm using 12 hour leases.

Tim

On Fri, Feb 5, 2010 at 12:24, Tim Gavin <livewire98801 at gmail.com> wrote:
> The problem with Cisco stuff is they always assume you're using DHCP
> on the router. . . I still have hope though :)
>
> I was hoping there was some kind of Debian solution, maybe using SNMP
> that would allow me to set static ARPs on the Cisco based on leases
> active in the DHCP server. . .   I'm still reviewing the Cisco docs,
> but if soemone has a Debian solution, that would be great.
>
> Thanks,
>
> Tim
>
>
> On Fri, Feb 5, 2010 at 11:58, Jonathan Brockmeier <brockj at hope.edu> wrote:
>> The one with links to Cisco seemed to be very good.
>>
>> Jon
>>
>> On Fri, Feb 5, 2010 at 2:55 PM, Tim Gavin <livewire98801 at gmail.com> wrote:
>>>
>>> I'm at a local ISP.  Hence the strange problem. . . in a corporate
>>> environment, this would be easy enough to prevent and discourage.
>>>
>>> We also have static customers that should be working in the same vlan.
>>>  What I really need is to make a certain block of IPs that are in the
>>> DHCP config to be bound to the DHCP leased MAC if there is one or
>>> 0000.0000.0000 if there isn't a lease.  Then statics aren't included.
>>> I'll read over the other replies when I get a chance, they look like
>>> they have good info but I've been busy today, lol.
>>>
>>> Thanks all,
>>>
>>> Tim
>>>
>>>
>>> On Fri, Feb 5, 2010 at 10:53, Jonathan Brockmeier <brockj at hope.edu> wrote:
>>> > Maybe we don't have that problem because our lease is so short (10
>>> > minutes)
>>> > that it ages out of the Cisco soon enough...I tried in my lab back when
>>> > I
>>> > was 1st trying out the features and found that a static would be blocked
>>> > (as
>>> > I have to add entries for printers.
>>> >
>>> > What company do you work with?
>>> >
>>> > Jonathan Brockmeier
>>> > Hope College
>>> >
>>> > On Fri, Feb 5, 2010 at 1:41 PM, Timothy Gavin <livewire98801 at gmail.com>
>>> > wrote:
>>> >>
>>> >> We have snooping on with the vendor network, but these are ppl who are
>>> >> statically assigning the addresses.
>>> >>
>>> >> Sent via BlackBerry by AT&T
>>> >>
>>> >> ________________________________
>>> >> From: Jonathan Brockmeier <brockj at hope.edu>
>>> >> Date: Fri, 5 Feb 2010 13:39:02 -0500
>>> >> To: Tim Gavin<livewire98801 at gmail.com>
>>> >> Subject: Re: Working with a Cisco router
>>> >> If you have Cisco switches, look into ip dhcp snooping, ip arp
>>> >> inspection
>>> >> and ip verify.
>>> >>
>>> >> They have a whole bunch of options to only allow traffic that has done
>>> >> a
>>> >> dhcp from a trusted location on the network.
>>> >>
>>> >> Jonathan Brockmeier
>>> >>
>>> >> On Fri, Feb 5, 2010 at 1:33 PM, Tim Gavin <livewire98801 at gmail.com>
>>> >> wrote:
>>> >>>
>>> >>> I have just identified a problem where a small group of people are
>>> >>> 'stealing' their IPs.  It appears that they're grabbing their DHCP
>>> >>> assigned address and setting it in their router as a static.  This has
>>> >>> the obvious consequences.
>>> >>>
>>> >>> What I'm wondering is if anyone knows of a script or app that will
>>> >>> work with ISC DHCP that can set a static ARP in my Cisco router based
>>> >>> on the DHCP lease.  Maybe using SNMP or something. . . I know it's a
>>> >>> strange request, but am hoping someone has dealt with this before.
>>> >>>
>>> >>> Thanks,
>>> >>>
>>> >>> Tim
>>> >>> _______________________________________________
>>> >>> dhcp-users mailing list
>>> >>> dhcp-users at lists.isc.org
>>> >>> https://lists.isc.org/mailman/listinfo/dhcp-users
>>> >>
>>> >>
>>> >>
>>> >> --
>>> >> Jonathan Brockmeier, CIT
>>> >> Hope College
>>> >> 616-395-7670
>>> >
>>> >
>>> >
>>> > --
>>> > Jonathan Brockmeier, CIT
>>> > Hope College
>>> > 616-395-7670
>>> >
>>
>>
>>
>> --
>> Jonathan Brockmeier, CIT
>> Hope College
>> 616-395-7670
>>
>